Home > Vulnerability Database > CVE-2025-24802

Mend.io Vulnerability Database

CVE-2025-24802

Good to know:

Date: January 30, 2025

Plonky2 is a SNARK implementation based on techniques from PLONK and FRI. Lookup tables, whose length is not divisible by 26 = floor(num_routed_wires / 3) always include the 0 -> 0 input-output pair. Thus a malicious prover can always prove that f(0) = 0 for any lookup table f (unless its length happens to be divisible by 26). The cause of problem is that the LookupTableGate-s are padded with zeros. A workaround from the user side is to extend the table (by repeating some entries) so that its length becomes divisible by 26. This vulnerability is fixed in 1.0.1.

Severity Score

8.6

Related Resources (6)

Url: https://github.com/0xPolygonZero/plonky2/security/advisories/GHSA-hj49-h7fq-px5h

Url: https://github.com/0xPolygonZero/plonky2/commit/091047f7f10cae082716f3738ad59a583835f7b6

Url: https://github.com/0xPolygonZero/plonky2

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-24802

Url: https://github.com/0xPolygonZero/plonky2/blob/main/plonky2/src/plonk/prover.rs#L97

Url: https://www.mend.io/vulnerability-database/CVE-2025-24802

Severity Score

8.6

Weakness Type (CWE)

Use of a Cryptographic Primitive with a Risky Implementation

CWE-1240

Top Fix

Upgrade Version

Upgrade to version plonky2 - 1.0.1

Learn More

CVSS v3.1

Base Score:	8.6
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	NONE
Integrity (I):	HIGH
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-24802

Good to know:

Date: January 30, 2025

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?